Jobbörse
Finde Jobs in deiner Nähe – ob vor Ort, hybrid oder remote.- Ähnliche Jobs zu: Senior/Staff Mobile Security Engineer
Senior/Staff Mobile Security Engineer
KubeltSan Francisco
Location San FranciscoEmployment Type Full timeLocation Type On-siteDepartment SecurityAbout the Opportunity As a Mobile Security Engineer, you will own the security and integrity of the mobile applic
Senior/Staff Mobile Security Engineer
World CoinUnited StatesAbout the Company: World is building a real human network designed to accelerate people in the age of AI. As bots and autonomous agents reshape the internet, people, institutions, and applications nee
Staff Engineer, Product Security Secure by Design
Elea EcuadorSan FranciscoElea Ecuador is seeking a Senior Staff Software Engineer for Product Security in San Francisco, California. In this role, you will lead the security direction and collaborate with engineering teams to
Staff Mobile Engineer, Spend Foundation
Airwallex Pty Ltd.San FranciscoAbout Airwallex Airwallex is the only unified payments and financial platform for global businesses. Powered by our unique combination of proprietary infrastructure and software, we empower over 200,0
Mozilla: Staff Software Engineer - Mobile Android - San Francisco
tendersglobalSan Franciscotendersglobal.netJOB DESCRIPTIONTo learn the Hiring Ranges for this position, please select your location from the Apply Now dropdown menu. To learn more about our Hiring Range System, please click th
Senior Security Engineer, Blockchain Detection
Tools for HumanitySan FranciscoAbout the Company World is building a real human network designed to accelerate people in the age of AI. As bots and autonomous agents reshape the internet, people, institutions, and applications need
Senior Firmware Engineer – Embedded IoT Security
GlobalLogicSan FranciscoGlobalLogic in San Francisco is seeking a detail-oriented Firmware Engineer to develop cybersecurity updates for IoT medical devices. This position requires expertise in embedded C, strong communicati
Staff Mobile Engineer at Kindred | Salary - $170,000 - $2200,000/yr
DexaccessSan FranciscoStaff Mobile Engineer at Kindred | Salary – $170,000 – $220,000/yr You Will:Serve as technology lead and own key decisions including the tech stack and strategy for all aspects of mobile developmentWo
Senior Mobile Engineer
PlaudSan FranciscoAbout Plaud Inc. Plaud is building the world's most trusted AI work companion for professionals to elevate productivity and performance through note-taking solutions, loved by over 1,500,000 users wor
Senior Mobile Engineer — AI-Driven Mobile & Hardware
PlaudSan FranciscoPlaud in San Francisco is seeking a skilled mobile application developer to design, develop, and maintain core features for the Plaud App. This role involves collaborating with cross-functional teams
Senior Frontend Engineer, Mobile
Roger HealthcareSan FranciscoAbout the RoleRoger is an AI platform that frees home health clinicians from paperwork so they can focus on what matters: delivering life-changing care to our most vulnerable elderly patients in the c
Senior Mobile QA Automation Engineer
twentysixSan Franciscotwentysix is looking for a QA Engineer to join their team in San Francisco, CA. The ideal candidate will have extensive experience in mobile test automation, particularly across iOS and Android platfo
Senior Software Engineer - Mobile (iOS)
Eight SleepSan FranciscoSenior iOS Software Engineer As a Senior iOS Software Engineer, you will work closely with Backend, Firmware, ML engineers, R&D, Growth, Hardware teams, and executive leadership to build a world‑class
Senior Mobile Infrastructure Engineer, Ambient AI
MonographSan FranciscoLocation Mountain View, CAEmployment Type Full timeDepartment EngineeringCompensation$160K – $220K • Offers EquityAt Commure, our mission is to simplify healthcare. We have bold ambitions to reimagine
Senior Mobile Frontend Engineer AI HealthTech
Roger HealthcareSan FranciscoRoger Healthcare is searching for a Senior Frontend Engineer to enhance the experience of clinicians through innovative mobile and web solutions. In this role, you will build intuitive interfaces that
Senior Software Engineer, Mobile (React Native)
ForeRunner CorporationSan FranciscoHi! We're Forerunner. We believe that climate adaptation is a necessity, not a luxury, and communities deserve access to powerful software that helps them plan for the future. The challenge of climate
Senior Software Engineer I - Mobile Platform
SamsaraSan FranciscoSenior Software Engineer II - Mobile Platform Remote - SF Bay Area Samsara's Mission Improve the safety, efficiency, and sustainability of the operations that power the global economy. At Samsara, we
Senior React Native Engineer Build Mobile Apps
Arena ClubSan FranciscoArena Club in San Francisco is seeking a Senior Mobile Engineer with strong expertise in React Native to enhance its mobile app. The ideal candidate will have over 7 years of experience in mobile deve
Senior Generalist Mobile Engineer — Cross-Stack & AI Tools
ApplySan FranciscoPerplexity AI is seeking experienced Generalist Software Engineers to join our teams. We are reshaping knowledge work with our Comet and Perplexity native applications. The ideal candidate will have s
Senior Mobile Engineer (iOS/Android) - Product-Driven Impact
JobrSan Franciscojobr.pro is looking for a Senior iOS/Android Software Engineer to join their product-focused team in San Francisco, California. The chosen candidate will design, implement, and maintain the mobile app
Senior/Staff Machine Learning Research Engineer, General Agents, Enterprise GenAI
Scale AISan FranciscoScale AI is the data foundation for AI, helping organizations build and deploy reliable production AI applications. We partner with leading enterprises and government organizations to accelerate their
Staff/Senior Frontend Engineer
Hamilton AISan FranciscoAbout Hamilton AI Hamilton AI is creating the operating system for business aviation. Unlike commercial aviation, business aviation lives in the dark ages, think emails, phone and spreadsheets that ru
Senior Staff Machine Learning Engineer, Consumer
FairygodbossSan FranciscoAbout the Team The Consumer Engineering Team is responsible for helping consumers discover and order everything they love globally. Our work spans the entire consumer journey across homepage, search,
Senior Staff Data Engineer
Unchain DataSan FranciscoAbout UsCircle (NYSE: CRCL) is one of the world's leading internet financial platform companies, building the foundation of a more open, global economy through digital assets, payment applications, an
Senior Staff Software Engineer (Search)
Dormont Manufacturing CompanySan FranciscoAbout the Team We are on a mission to build a reliable, fast, and scalable search for DoorDash. As a product, we help millions of customers find the stores, items, and experiences they want. As a plat
Senior/Staff Mobile Security Engineer
- San Francisco, California, United States
- San Francisco, California, United States
Über
Employment Type Full time
Location Type On-site
Department Security
About the Opportunity As a Mobile Security Engineer, you will own the security and integrity of the mobile applications at the core of the World protocol World App on Android and iOS used by millions of people worldwide to verify their identity, authenticate with biometrics, and manage digital assets. This is not a consultative role; you will be a hands‑on builder, designing and implementing the systems that ensure our mobile clients are trustworthy, tamper‑resistant, and resilient to adversarial attack at global scale.
Our mobile threat model is uniquely challenging: the World App must perform privacy‑preserving biometric operations (iris and face authentication) on‑device, hold cryptographic keys for identity proofs, and interact with hardware attestation systems all while operating in environments where adversaries range from casual fraud to nation‑state‑level identity fabrication at scale. You will be the expert who ensures this stack cannot be subverted.
Responsibilities
Design, build, and operate mobile device attestation and integrity verification systems across Android and iOS including hardware‑backed key attestation (Android KeyStore TEE/StrongBox, Apple App Attest/Secure Enclave), ensuring requests originate from genuine, untampered devices running unmodified app code.
Engineer anti‑tampering, anti‑hooking, and runtime integrity protections for the World App, making the app resilient against reverse engineering, instrumentation frameworks (Frida, Xposed), and repackaging attacks.
Own the mobile hardening strategy end‑to‑end: certificate pinning, secure storage, obfuscation, jailbreak/root detection, debugger detection, and screen capture protection deciding which protections to build in‑house and which to source from vendors.
Design cryptographic protocols for on‑device biometric authentication (Face Auth, selfie verification) that are resistant to replay, relay, and deepfake injection attacks, ensuring the biometric pipeline cannot be manipulated even on a compromised device.
Build and maintain the server‑side attestation verification infrastructure (our Attestation Gateway) that validates Play Integrity tokens, hardware attestation certificate chains, and Apple App Attest assertions, making trust decisions that gate access to sensitive operations.
Lead threat modeling for mobile‑specific attack surfaces: biometric bypass, key extraction, device cloning, session hijacking, overlay attacks, accessibility abuse, and automated bot farms using real devices.
Embed security into the mobile development lifecycle performing deep code reviews of Android (Kotlin) and iOS (Swift) code, building automated security checks into CI/CD, and establishing secure coding standards for mobile teams.
Mature our vulnerability management process for mobile, from triaging mobile‑specific bug bounty submissions to driving remediation with mobile engineering teams.
Evaluate, integrate, and manage mobile security tooling and vendor relationships (RASP, SAST for mobile, binary analysis tools).
About You You are a deeply technical mobile security engineer who has spent years protecting high‑value mobile applications against sophisticated adversaries. You have a builder's mindset; you don't just find problems, you ship solutions. You've been responsible for the security of mobile apps where the stakes are real: payments, identity, or financial services at scale.
Required
8+ years of hands‑on experience in mobile security engineering, with deep expertise in at least one of Android or iOS (strong in both is ideal).
Proven experience designing and operating mobile device attestation systems you understand Android Hardware Key Attestation (KeyMint, TEE, StrongBox, attestation certificate chains, Google root CA verification), Google Play Integrity API (Classic and Standard modes), and/or Apple App Attest (DeviceCheck, attestation/assertion flows, Secure Enclave) at a systems level, not just as an API consumer.
Strong background in mobile application hardening: you have implemented or evaluated anti‑tampering, anti‑hooking, root/jailbreak detection, debugger detection, certificate pinning, and runtime integrity protection in production apps.
Experience with mobile reverse engineering and offensive security: you can decompile APKs (jadx, apktool), analyze iOS binaries, use Frida/Objection for dynamic analysis, and think like an attacker to validate your defenses.
Proficiency in Kotlin/Java (Android) and/or Swift (iOS) for security‑focused code review and building security libraries.
Experience securing on‑device cryptographic operations: key generation, secure storage (Android KeyStore, iOS Keychain), and protocols that depend on hardware‑backed keys.
Strong understanding of mobile‑specific attack vectors: overlay attacks, accessibility service abuse, screen recording, deepfake injection into camera pipelines, biometric bypass, and app cloning.
Nice to have
Experience building or operating server‑side attestation verification services (decrypting Play Integrity JWE/JWS tokens, validating X.509 attestation certificate chains, managing Apple App Attest key lifecycle in a backend).
Experience with RASP vendor evaluation and integration (Zimperium, Guardsquare/DexGuard, Promon, Appdome).
Background in payment security or PCI‑compliant mobile applications (SoftPOS, Tap‑to‑Pay, EMV).
Familiarity with privacy‑preserving systems: zero‑knowledge proofs, on‑device biometric processing, or differential privacy.
Experience scaling a Secure SDLC or security champions program for mobile engineering teams.
Contributions to mobile security research, conference talks, or open‑source security tooling.
Rust, Go, or Python experience for backend security tooling and infrastructure.
What we offer The reasonably estimated salary for this role at Tools for Humanity ranges from $251,000 - $325,000 plus a competitive long‑term incentive package. Actual compensation is based on factors such as the candidate's skills, qualifications, and experience. In addition, Tools for Humanity offers a wide range of best‑in‑class, comprehensive, and inclusive employee benefits for this role, including healthcare, dental, vision, 401(k) plan and match, life insurance, flexible time off, commuter benefits, professional development stipend, and much more.
#J-18808-Ljbffr
Sprachkenntnisse
- English
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klick auf „Jetzt Bewerben”, um deine Bewerbung direkt auf deren Website einzureichen.